// For flags

CVE-2018-0027

Junos OS: Receipt of malformed RSVP packet may lead to RPD denial of service

Severity Score

5.9
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Receipt of a crafted or malformed RSVP PATH message may cause the routing protocol daemon (RPD) to hang or crash. When RPD is unavailable, routing updates cannot be processed which can lead to an extended network outage. If RSVP is not enabled on an interface, then the issue cannot be triggered via that interface. This issue only affects Juniper Networks Junos OS 16.1 versions prior to 16.1R3. This issue does not affect Junos releases prior to 16.1R1.

La recepción de un mensaje RSVP PATH manipulado o mal formado podría provocar que el demonio del protocolo de enrutamiento se bloquee o se cierre inesperadamente. Cuando RPD no está disponible, las actualizaciones de enrutamiento no pueden ser procesadas, lo que puede conducir a una caída prolongada de la red. Si RSVP no está habilitado en una interfaz, el problema no puede ser desencadenado mediante esa interfaz. Este problema solo afecta a Juniper Networks Junos OS 16.1 en versiones anteriores a 16.1R3. Este problema no afecta a las versiones de Junos anteriores a la 16.1R1.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2017-11-16 CVE Reserved
  • 2018-07-11 CVE Published
  • 2024-02-28 EPSS Updated
  • 2024-09-17 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
References (3)
URL Tag Source
http://www.securityfocus.com/bid/104721 Third Party Advisory
http://www.securitytracker.com/id/1041318 Third Party Advisory
URL Date SRC
URL Date SRC
URL Date SRC
https://kb.juniper.net/JSA10861 2019-10-09
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 16.1
Search vendor "Juniper" for product "Junos" and version "16.1"
r1
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 16.1
Search vendor "Juniper" for product "Junos" and version "16.1"
r2
Affected